CVE-2019-12397

Summary

Policy import functionality in Apache Ranger 0.7.0 to 1.2.0 is vulnerable to a cross-site scripting issue. Upgrade to 2.0.0 or later version of Apache Ranger with the fix.

Affected Software

VendorProductVersion RangeStatus
Apache Software FoundationApache Ranger0.7.0 to 1.2.0affected

Weaknesses

  • Cross-site scripting

ADP Enrichment

CVE Program Container

Additional References

References